OpenSSL 0.9.4 merge

author: beck <> 1999-09-29 04:37:45 +0000
committer: beck <> 1999-09-29 04:37:45 +0000
commit: de8f24ea083384bb66b32ec105dc4743c5663cdf (patch)
tree: 1412176ae62a3cab2cf2b0b92150fcbceaac6092 /src/lib/libssl/ssl_cert.c
parent: cb929d29896bcb87c2a97417fbd03e50078fc178 (diff)
download: openbsd-de8f24ea083384bb66b32ec105dc4743c5663cdf.tar.gz
openbsd-de8f24ea083384bb66b32ec105dc4743c5663cdf.tar.bz2
openbsd-de8f24ea083384bb66b32ec105dc4743c5663cdf.zip
1 files changed, 462 insertions, 75 deletions
diff --git a/src/lib/libssl/ssl_cert.c b/src/lib/libssl/ssl_cert.c
index c1cb86e1b7..6d2511f76c 100644
--- a/src/lib/libssl/ssl_cert.c
+++ b/src/lib/libssl/ssl_cert.c
@@ -1,4 +1,4 @@
-/* ssl/ssl_cert.c */
+/*! \file ssl/ssl_cert.c */
 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
@@ -55,14 +55,82 @@
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */
+/* ====================================================================
+ * Copyright (c) 1999 The OpenSSL Project.  All rights reserved.
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions
+ * are met:
+ *
+ * 1. Redistributions of source code must retain the above copyright
+ *    notice, this list of conditions and the following disclaimer. 
+ *
+ * 2. Redistributions in binary form must reproduce the above copyright
+ *    notice, this list of conditions and the following disclaimer in
+ *    the documentation and/or other materials provided with the
+ *    distribution.
+ *
+ * 3. All advertising materials mentioning features or use of this
+ *    software must display the following acknowledgment:
+ *    "This product includes software developed by the OpenSSL Project
+ *    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
+ *
+ * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
+ *    endorse or promote products derived from this software without
+ *    prior written permission. For written permission, please contact
+ *    openssl-core@OpenSSL.org.
+ *
+ * 5. Products derived from this software may not be called "OpenSSL"
+ *    nor may "OpenSSL" appear in their names without prior written
+ *    permission of the OpenSSL Project.
+ *
+ * 6. Redistributions of any form whatsoever must retain the following
+ *    acknowledgment:
+ *    "This product includes software developed by the OpenSSL Project
+ *    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
+ * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+ * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+ * PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
+ * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+ * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+ * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+ * OF THE POSSIBILITY OF SUCH DAMAGE.
+ * ====================================================================
+ */
 #include <stdio.h>
-#include "objects.h"
+#include <sys/types.h>
-#include "bio.h"
+#if !defined(WIN32) && !defined(VSM) && !defined(NeXT)
-#include "pem.h"
+#include <dirent.h>
+#endif
+#ifdef NeXT
+#include <sys/dir.h>
+#define dirent direct
+#endif
+#include <openssl/objects.h>
+#include <openssl/bio.h>
+#include <openssl/pem.h>
 #include "ssl_locl.h"
-CERT *ssl_cert_new()
+int SSL_get_ex_data_X509_STORE_CTX_idx(void)
+        {
+        static int ssl_x509_store_ctx_idx= -1;
+        if (ssl_x509_store_ctx_idx < 0)
+                {
+                ssl_x509_store_ctx_idx=X509_STORE_CTX_get_ex_new_index(
+                        0,"SSL for verify callback",NULL,NULL,NULL);
+                }
+        return(ssl_x509_store_ctx_idx);
+        }
+CERT *ssl_cert_new(void)
        {
        CERT *ret;
@@ -73,14 +141,6 @@ CERT *ssl_cert_new()
                return(NULL);
                }
        memset(ret,0,sizeof(CERT));
-/*
-        ret->valid=0;
-        ret->mask=0;
-        ret->export_mask=0;
-        ret->cert_type=0;
-        ret->key->x509=NULL;
-        ret->key->publickey=NULL;
-        ret->key->privatekey=NULL; */
        ret->key= &(ret->pkeys[SSL_PKEY_RSA_ENC]);
        ret->references=1;
@@ -88,11 +148,132 @@ CERT *ssl_cert_new()
        return(ret);
        }
-void ssl_cert_free(c)
+CERT *ssl_cert_dup(CERT *cert)
-CERT *c;
+        {
+        CERT *ret;
+        int i;
+        ret = (CERT *)Malloc(sizeof(CERT));
+        if (ret == NULL)
+                {
+                SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_MALLOC_FAILURE);
+                return(NULL);
+                }
+        memset(ret, 0, sizeof(CERT));
+        ret->key = &ret->pkeys[cert->key - &cert->pkeys[0]];
+        /* or ret->key = ret->pkeys + (cert->key - cert->pkeys),
+         * if you find that more readable */
+        ret->valid = cert->valid;
+        ret->mask = cert->mask;
+        ret->export_mask = cert->export_mask;
+#ifndef NO_RSA
+        if (cert->rsa_tmp != NULL)
+                {
+                ret->rsa_tmp = cert->rsa_tmp;
+                CRYPTO_add(&ret->rsa_tmp->references, 1, CRYPTO_LOCK_RSA);
+                }
+        ret->rsa_tmp_cb = cert->rsa_tmp_cb;
+#endif
+#ifndef NO_DH
+        if (cert->dh_tmp != NULL)
+                {
+                /* DH parameters don't have a reference count (and cannot
+                 * reasonably be shared anyway, as the secret exponent may
+                 * be created just when it is needed -- earlier library
+                 * versions did not pay attention to this) */
+                ret->dh_tmp = DHparams_dup(cert->dh_tmp);
+                if (ret->dh_tmp == NULL)
+                        {
+                        SSLerr(SSL_F_SSL_CERT_NEW, ERR_R_DH_LIB);
+                        goto err;
+                        }
+                }
+        ret->dh_tmp_cb = cert->dh_tmp_cb;
+#endif
+        for (i = 0; i < SSL_PKEY_NUM; i++)
+                {
+                if (cert->pkeys[i].x509 != NULL)
+                        {
+                        ret->pkeys[i].x509 = cert->pkeys[i].x509;
+                        CRYPTO_add(&ret->pkeys[i].x509->references, 1,
+                                CRYPTO_LOCK_X509);
+                        }
+                
+                if (cert->pkeys[i].privatekey != NULL)
+                        {
+                        ret->pkeys[i].privatekey = cert->pkeys[i].privatekey;
+                        CRYPTO_add(&ret->pkeys[i].privatekey->references, 1,
+                                CRYPTO_LOCK_EVP_PKEY);
+                        switch(i) 
+                                {
+                                /* If there was anything special to do for
+                                 * certain types of keys, we'd do it here.
+                                 * (Nothing at the moment, I think.) */
+                        case SSL_PKEY_RSA_ENC:
+                        case SSL_PKEY_RSA_SIGN:
+                                /* We have an RSA key. */
+                                break;
+                                
+                        case SSL_PKEY_DSA_SIGN:
+                                /* We have a DSA key. */
+                                break;
+                                
+                        case SSL_PKEY_DH_RSA:
+                        case SSL_PKEY_DH_DSA:
+                                /* We have a DH key. */
+                                break;
+                                
+                        default:
+                                /* Can't happen. */
+                                SSLerr(SSL_F_SSL_CERT_DUP, SSL_R_LIBRARY_BUG);
+                                }
+                        }
+                }
+        
+        /* ret->extra_certs *should* exist, but currently the own certificate
+         * chain is held inside SSL_CTX */
+        ret->references=1;
+        return(ret);
+        
+err:
+#ifndef NO_RSA
+        if (ret->rsa_tmp != NULL)
+                RSA_free(ret->rsa_tmp);
+#endif
+#ifndef NO_DH
+        if (ret->dh_tmp != NULL)
+                DH_free(ret->dh_tmp);
+#endif
+        for (i = 0; i < SSL_PKEY_NUM; i++)
+                {
+                if (ret->pkeys[i].x509 != NULL)
+                        X509_free(ret->pkeys[i].x509);
+                if (ret->pkeys[i].privatekey != NULL)
+                        EVP_PKEY_free(ret->pkeys[i].privatekey);
+                }
+        return NULL;
+        }
+void ssl_cert_free(CERT *c)
        {
        int i;
+        if(c == NULL)
+            return;
        i=CRYPTO_add(&c->references,-1,CRYPTO_LOCK_SSL_CERT);
 #ifdef REF_PRINT
        REF_PRINT("CERT",c);
@@ -124,97 +305,188 @@ CERT *c;
                        EVP_PKEY_free(c->pkeys[i].publickey);
 #endif
                }
-        if (c->cert_chain != NULL)
-                sk_pop_free(c->cert_chain,X509_free);
        Free(c);
        }
-int ssl_set_cert_type(c, type)
+int ssl_cert_inst(CERT **o)
-CERT *c;
-int type;
        {
-        c->cert_type=type;
+        /* Create a CERT if there isn't already one
+         * (which cannot really happen, as it is initially created in
+         * SSL_CTX_new; but the earlier code usually allows for that one
+         * being non-existant, so we follow that behaviour, as it might
+         * turn out that there actually is a reason for it -- but I'm
+         * not sure that *all* of the existing code could cope with
+         * s->cert being NULL, otherwise we could do without the
+         * initialization in SSL_CTX_new).
+         */
+        
+        if (o == NULL) 
+                {
+                SSLerr(SSL_F_SSL_CERT_INST, ERR_R_PASSED_NULL_PARAMETER);
+                return(0);
+                }
+        if (*o == NULL)
+                {
+                if ((*o = ssl_cert_new()) == NULL)
+                        {
+                        SSLerr(SSL_F_SSL_CERT_INST, ERR_R_MALLOC_FAILURE);
+                        return(0);
+                        }
+                }
+        return(1);
+        }
+SESS_CERT *ssl_sess_cert_new(void)
+        {
+        SESS_CERT *ret;
+        ret = Malloc(sizeof *ret);
+        if (ret == NULL)
+                {
+                SSLerr(SSL_F_SSL_SESS_CERT_NEW, ERR_R_MALLOC_FAILURE);
+                return NULL;
+                }
+        memset(ret, 0 ,sizeof *ret);
+        ret->peer_key = &(ret->peer_pkeys[SSL_PKEY_RSA_ENC]);
+        ret->references = 1;
+        return ret;
+        }
+void ssl_sess_cert_free(SESS_CERT *sc)
+        {
+        int i;
+        if (sc == NULL)
+                return;
+        i = CRYPTO_add(&sc->references, -1, CRYPTO_LOCK_SSL_SESS_CERT);
+#ifdef REF_PRINT
+        REF_PRINT("SESS_CERT", sc);
+#endif
+        if (i > 0)
+                return;
+#ifdef REF_CHECK
+        if (i < 0)
+                {
+                fprintf(stderr,"ssl_sess_cert_free, bad reference count\n");
+                abort(); /* ok */
+                }
+#endif
+        /* i == 0 */
+        if (sc->cert_chain != NULL)
+                sk_X509_pop_free(sc->cert_chain, X509_free);
+        for (i = 0; i < SSL_PKEY_NUM; i++)
+                {
+                if (sc->peer_pkeys[i].x509 != NULL)
+                        X509_free(sc->peer_pkeys[i].x509);
+#if 0 /* We don't have the peer's private key.  These lines are just
+           * here as a reminder that we're still using a not-quite-appropriate
+           * data structure. */
+                if (sc->peer_pkeys[i].privatekey != NULL)
+                        EVP_PKEY_free(sc->peer_pkeys[i].privatekey);
+#endif
+                }
+#ifndef NO_RSA
+        if (sc->peer_rsa_tmp != NULL)
+                RSA_free(sc->peer_rsa_tmp);
+#endif
+#ifndef NO_DH
+        if (sc->peer_dh_tmp != NULL)
+                DH_free(sc->peer_dh_tmp);
+#endif
+        Free(sc);
+        }
+int ssl_set_peer_cert_type(SESS_CERT *sc,int type)
+        {
+        sc->peer_cert_type = type;
        return(1);
        }
-int ssl_verify_cert_chain(s,sk)
+int ssl_verify_cert_chain(SSL *s,STACK_OF(X509) *sk)
-SSL *s;
-STACK *sk;
        {
        X509 *x;
        int i;
        X509_STORE_CTX ctx;
-        if ((sk == NULL) || (sk_num(sk) == 0))
+        if ((sk == NULL) || (sk_X509_num(sk) == 0))
                return(0);
-        x=(X509 *)sk_value(sk,0);
+        x=sk_X509_value(sk,0);
        X509_STORE_CTX_init(&ctx,s->ctx->cert_store,x,sk);
-        X509_STORE_CTX_set_app_data(&ctx,(char *)s);
+        if (SSL_get_verify_depth(s) >= 0)
+                X509_STORE_CTX_set_depth(&ctx, SSL_get_verify_depth(s));
+        X509_STORE_CTX_set_ex_data(&ctx,SSL_get_ex_data_X509_STORE_CTX_idx(),
+                (char *)s);
        if (s->ctx->app_verify_callback != NULL)
-                i=s->ctx->app_verify_callback(&ctx);
+                i=s->ctx->app_verify_callback(&ctx); /* should pass app_verify_arg */
        else
+                {
+#ifndef NO_X509_VERIFY
                i=X509_verify_cert(&ctx);
+#else
+                i=0;
+                ctx.error=X509_V_ERR_APPLICATION_VERIFICATION;
+                SSLerr(SSL_F_SSL_VERIFY_CERT_CHAIN,SSL_R_NO_VERIFY_CALLBACK);
+#endif
+                }
-        X509_STORE_CTX_cleanup(&ctx);
        s->verify_result=ctx.error;
+        X509_STORE_CTX_cleanup(&ctx);
        return(i);
        }
-static void set_client_CA_list(ca_list,list)
+static void set_client_CA_list(STACK_OF(X509_NAME) **ca_list,STACK_OF(X509_NAME) *list)
-STACK **ca_list;
-STACK *list;
        {
        if (*ca_list != NULL)
-                sk_pop_free(*ca_list,X509_NAME_free);
+                sk_X509_NAME_pop_free(*ca_list,X509_NAME_free);
        *ca_list=list;
        }
-STACK *SSL_dup_CA_list(sk)
+STACK_OF(X509_NAME) *SSL_dup_CA_list(STACK_OF(X509_NAME) *sk)
-STACK *sk;
        {
        int i;
-        STACK *ret;
+        STACK_OF(X509_NAME) *ret;
        X509_NAME *name;
-        ret=sk_new_null();
+        ret=sk_X509_NAME_new_null();
-        for (i=0; i<sk_num(sk); i++)
+        for (i=0; i<sk_X509_NAME_num(sk); i++)
                {
-                name=X509_NAME_dup((X509_NAME *)sk_value(sk,i));
+                name=X509_NAME_dup(sk_X509_NAME_value(sk,i));
-                if ((name == NULL) || !sk_push(ret,(char *)name))
+                if ((name == NULL) || !sk_X509_NAME_push(ret,name))
                        {
-                        sk_pop_free(ret,X509_NAME_free);
+                        sk_X509_NAME_pop_free(ret,X509_NAME_free);
                        return(NULL);
                        }
                }
        return(ret);
        }
-void SSL_set_client_CA_list(s,list)
+void SSL_set_client_CA_list(SSL *s,STACK_OF(X509_NAME) *list)
-SSL *s;
-STACK *list;
        {
        set_client_CA_list(&(s->client_CA),list);
        }
-void SSL_CTX_set_client_CA_list(ctx,list)
+void SSL_CTX_set_client_CA_list(SSL_CTX *ctx,STACK_OF(X509_NAME) *list)
-SSL_CTX *ctx;
-STACK *list;
        {
        set_client_CA_list(&(ctx->client_CA),list);
        }
-STACK *SSL_CTX_get_client_CA_list(ctx)
+STACK_OF(X509_NAME) *SSL_CTX_get_client_CA_list(SSL_CTX *ctx)
-SSL_CTX *ctx;
        {
        return(ctx->client_CA);
        }
-STACK *SSL_get_client_CA_list(s)
+STACK_OF(X509_NAME) *SSL_get_client_CA_list(SSL *s)
-SSL *s;
        {
        if (s->type == SSL_ST_CONNECT)
                { /* we are in the client */
@@ -233,20 +505,18 @@ SSL *s;
                }
        }
-static int add_client_CA(sk,x)
+static int add_client_CA(STACK_OF(X509_NAME) **sk,X509 *x)
-STACK **sk;
-X509 *x;
        {
        X509_NAME *name;
        if (x == NULL) return(0);
-        if ((*sk == NULL) && ((*sk=sk_new_null()) == NULL))
+        if ((*sk == NULL) && ((*sk=sk_X509_NAME_new_null()) == NULL))
                return(0);
                
        if ((name=X509_NAME_dup(X509_get_subject_name(x))) == NULL)
                return(0);
-        if (!sk_push(*sk,(char *)name))
+        if (!sk_X509_NAME_push(*sk,name))
                {
                X509_NAME_free(name);
                return(0);
@@ -254,37 +524,39 @@ X509 *x;
        return(1);
        }
-int SSL_add_client_CA(ssl,x)
+int SSL_add_client_CA(SSL *ssl,X509 *x)
-SSL *ssl;
-X509 *x;
        {
        return(add_client_CA(&(ssl->client_CA),x));
        }
-int SSL_CTX_add_client_CA(ctx,x)
+int SSL_CTX_add_client_CA(SSL_CTX *ctx,X509 *x)
-SSL_CTX *ctx;
-X509 *x;
        {
        return(add_client_CA(&(ctx->client_CA),x));
        }
-static int name_cmp(a,b)
+static int name_cmp(X509_NAME **a,X509_NAME **b)
-X509_NAME **a,**b;
        {
        return(X509_NAME_cmp(*a,*b));
        }
 #ifndef NO_STDIO
-STACK *SSL_load_client_CA_file(file)
+/*!
-char *file;
+ * Load CA certs from a file into a ::STACK. Note that it is somewhat misnamed;
+ * it doesn't really have anything to do with clients (except that a common use
+ * for a stack of CAs is to send it to the client). Actually, it doesn't have
+ * much to do with CAs, either, since it will load any old cert.
+ * \param file the file containing one or more certs.
+ * \return a ::STACK containing the certs.
+ */
+STACK_OF(X509_NAME) *SSL_load_client_CA_file(const char *file)
        {
        BIO *in;
        X509 *x=NULL;
        X509_NAME *xn=NULL;
-        STACK *ret,*sk;
+        STACK_OF(X509_NAME) *ret,*sk;
-        ret=sk_new(NULL);
+        ret=sk_X509_NAME_new(NULL);
-        sk=sk_new(name_cmp);
+        sk=sk_X509_NAME_new(name_cmp);
        in=BIO_new(BIO_s_file_internal());
@@ -299,31 +571,146 @@ char *file;
        for (;;)
                {
-                if (PEM_read_bio_X509(in,&x,NULL) == NULL)
+                if (PEM_read_bio_X509(in,&x,NULL,NULL) == NULL)
                        break;
                if ((xn=X509_get_subject_name(x)) == NULL) goto err;
                /* check for duplicates */
                xn=X509_NAME_dup(xn);
                if (xn == NULL) goto err;
-                if (sk_find(sk,(char *)xn) >= 0)
+                if (sk_X509_NAME_find(sk,xn) >= 0)
                        X509_NAME_free(xn);
                else
                        {
-                        sk_push(sk,(char *)xn);
+                        sk_X509_NAME_push(sk,xn);
-                        sk_push(ret,(char *)xn);
+                        sk_X509_NAME_push(ret,xn);
                        }
                }
        if (0)
                {
 err:
-                if (ret != NULL) sk_pop_free(ret,X509_NAME_free);
+                if (ret != NULL) sk_X509_NAME_pop_free(ret,X509_NAME_free);
                ret=NULL;
                }
-        if (sk != NULL) sk_free(sk);
+        if (sk != NULL) sk_X509_NAME_free(sk);
        if (in != NULL) BIO_free(in);
        if (x != NULL) X509_free(x);
        return(ret);
        }
 #endif
+/*!
+ * Add a file of certs to a stack.
+ * \param stack the stack to add to.
+ * \param file the file to add from. All certs in this file that are not
+ * already in the stack will be added.
+ * \return 1 for success, 0 for failure. Note that in the case of failure some
+ * certs may have been added to \c stack.
+ */
+int SSL_add_file_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack,
+                                        const char *file)
+    {
+    BIO *in;
+    X509 *x=NULL;
+    X509_NAME *xn=NULL;
+    int ret=1;
+    int (*oldcmp)(X509_NAME **a, X509_NAME **b);
+    oldcmp=sk_X509_NAME_set_cmp_func(stack,name_cmp);
+    in=BIO_new(BIO_s_file_internal());
+    if (in == NULL)
+        {
+        SSLerr(SSL_F_SSL_ADD_FILE_CERT_SUBJECTS_TO_STACK,ERR_R_MALLOC_FAILURE);
+        goto err;
+        }
+        
+    if (!BIO_read_filename(in,file))
+        goto err;
+    for (;;)
+        {
+        if (PEM_read_bio_X509(in,&x,NULL,NULL) == NULL)
+            break;
+        if ((xn=X509_get_subject_name(x)) == NULL) goto err;
+        xn=X509_NAME_dup(xn);
+        if (xn == NULL) goto err;
+        if (sk_X509_NAME_find(stack,xn) >= 0)
+            X509_NAME_free(xn);
+        else
+            sk_X509_NAME_push(stack,xn);
+        }
+    if (0)
+        {
+err:
+        ret=0;
+        }
+    if(in != NULL)
+        BIO_free(in);
+    if(x != NULL)
+        X509_free(x);
+    sk_X509_NAME_set_cmp_func(stack,oldcmp);
+    return ret;
+    }
+/*!
+ * Add a directory of certs to a stack.
+ * \param stack the stack to append to.
+ * \param dir the directory to append from. All files in this directory will be
+ * examined as potential certs. Any that are acceptable to
+ * SSL_add_dir_cert_subjects_to_stack() that are not already in the stack will be
+ * included.
+ * \return 1 for success, 0 for failure. Note that in the case of failure some
+ * certs may have been added to \c stack.
+ */
+#ifndef WIN32
+#ifndef VMS                     /* XXXX This may be fixed in the future */
+int SSL_add_dir_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack,
+                                       const char *dir)
+    {
+    DIR *d;
+    struct dirent *dstruct;
+    int ret = 0;
+    CRYPTO_w_lock(CRYPTO_LOCK_READDIR);
+    d = opendir(dir);
+    /* Note that a side effect is that the CAs will be sorted by name */
+    if(!d)
+        {
+        SYSerr(SYS_F_OPENDIR, get_last_sys_error());
+        ERR_add_error_data(3, "opendir('", dir, "')");
+        SSLerr(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK, ERR_R_SYS_LIB);
+        goto err;
+        }
+    while((dstruct=readdir(d)))
+        {
+        char buf[1024];
+        if(strlen(dir)+strlen(dstruct->d_name)+2 > sizeof buf)
+            {
+            SSLerr(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK,SSL_R_PATH_TOO_LONG);
+            goto err;
+            }
+        
+        sprintf(buf,"%s/%s",dir,dstruct->d_name);
+        if(!SSL_add_file_cert_subjects_to_stack(stack,buf))
+            goto err;
+        }
+    ret = 1;
+err:    
+    CRYPTO_w_unlock(CRYPTO_LOCK_READDIR);
+    return ret;
+    }
+#endif
+#endif
author	beck <>	1999-09-29 04:37:45 +0000
committer	beck <>	1999-09-29 04:37:45 +0000
commit	de8f24ea083384bb66b32ec105dc4743c5663cdf (patch)
tree	1412176ae62a3cab2cf2b0b92150fcbceaac6092 /src/lib/libssl/ssl_cert.c
parent	cb929d29896bcb87c2a97417fbd03e50078fc178 (diff)
download	openbsd-de8f24ea083384bb66b32ec105dc4743c5663cdf.tar.gz openbsd-de8f24ea083384bb66b32ec105dc4743c5663cdf.tar.bz2 openbsd-de8f24ea083384bb66b32ec105dc4743c5663cdf.zip

diff --git a/src/lib/libssl/ssl_cert.c b/src/lib/libssl/ssl_cert.c index c1cb86e1b7..6d2511f76c 100644 --- a/src/lib/libssl/ssl_cert.c +++ b/src/lib/libssl/ssl_cert.c
@@ -1,4 +1,4 @@
1	/* ssl/ssl_cert.c */	1	/! \file ssl/ssl_cert.c /
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3	* All rights reserved.	3	* All rights reserved.
4	*	4	*
@@ -55,14 +55,82 @@
55	* copied and put under another distribution licence	55	* copied and put under another distribution licence
56	* [including the GNU Public Licence.]	56	* [including the GNU Public Licence.]
57	*/	57	*/
		58	/* ====================================================================
		59	* Copyright (c) 1999 The OpenSSL Project. All rights reserved.
		60	*
		61	* Redistribution and use in source and binary forms, with or without
		62	* modification, are permitted provided that the following conditions
		63	* are met:
		64	*
		65	* 1. Redistributions of source code must retain the above copyright
		66	* notice, this list of conditions and the following disclaimer.
		67	*
		68	* 2. Redistributions in binary form must reproduce the above copyright
		69	* notice, this list of conditions and the following disclaimer in
		70	* the documentation and/or other materials provided with the
		71	* distribution.
		72	*
		73	* 3. All advertising materials mentioning features or use of this
		74	* software must display the following acknowledgment:
		75	* "This product includes software developed by the OpenSSL Project
		76	* for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"
		77	*
		78	* 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
		79	* endorse or promote products derived from this software without
		80	* prior written permission. For written permission, please contact
		81	* openssl-core@OpenSSL.org.
		82	*
		83	* 5. Products derived from this software may not be called "OpenSSL"
		84	* nor may "OpenSSL" appear in their names without prior written
		85	* permission of the OpenSSL Project.
		86	*
		87	* 6. Redistributions of any form whatsoever must retain the following
		88	* acknowledgment:
		89	* "This product includes software developed by the OpenSSL Project
		90	* for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"
		91	*
		92	* THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
		93	* EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
		94	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
		95	* PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
		96	* ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
		97	* SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
		98	* NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
		99	* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
		100	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
		101	* STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
		102	* ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
		103	* OF THE POSSIBILITY OF SUCH DAMAGE.
		104	* ====================================================================
		105	*/
58		106
59	#include <stdio.h>	107	#include <stdio.h>
60	#include "objects.h"	108	#include <sys/types.h>
61	#include "bio.h"	109	#if !defined(WIN32) && !defined(VSM) && !defined(NeXT)
62	#include "pem.h"	110	#include <dirent.h>
		111	#endif
		112	#ifdef NeXT
		113	#include <sys/dir.h>
		114	#define dirent direct
		115	#endif
		116	#include <openssl/objects.h>
		117	#include <openssl/bio.h>
		118	#include <openssl/pem.h>
63	#include "ssl_locl.h"	119	#include "ssl_locl.h"
64		120
65	CERT *ssl_cert_new()	121	int SSL_get_ex_data_X509_STORE_CTX_idx(void)
		122	{
		123	static int ssl_x509_store_ctx_idx= -1;
		124
		125	if (ssl_x509_store_ctx_idx < 0)
		126	{
		127	ssl_x509_store_ctx_idx=X509_STORE_CTX_get_ex_new_index(
		128	0,"SSL for verify callback",NULL,NULL,NULL);
		129	}
		130	return(ssl_x509_store_ctx_idx);
		131	}
		132
		133	CERT *ssl_cert_new(void)
66	{	134	{
67	CERT *ret;	135	CERT *ret;
68		136
@@ -73,14 +141,6 @@ CERT *ssl_cert_new()
73	return(NULL);	141	return(NULL);
74	}	142	}
75	memset(ret,0,sizeof(CERT));	143	memset(ret,0,sizeof(CERT));
76	/*
77	ret->valid=0;
78	ret->mask=0;
79	ret->export_mask=0;
80	ret->cert_type=0;
81	ret->key->x509=NULL;
82	ret->key->publickey=NULL;
83	ret->key->privatekey=NULL; */
84		144
85	ret->key= &(ret->pkeys[SSL_PKEY_RSA_ENC]);	145	ret->key= &(ret->pkeys[SSL_PKEY_RSA_ENC]);
86	ret->references=1;	146	ret->references=1;
@@ -88,11 +148,132 @@ CERT *ssl_cert_new()
88	return(ret);	148	return(ret);
89	}	149	}
90		150
91	void ssl_cert_free(c)	151	CERT ssl_cert_dup(CERT cert)
92	CERT *c;	152	{
		153	CERT *ret;
		154	int i;
		155
		156	ret = (CERT *)Malloc(sizeof(CERT));
		157	if (ret == NULL)
		158	{
		159	SSLerr(SSL_F_SSL_CERT_DUP, ERR_R_MALLOC_FAILURE);
		160	return(NULL);
		161	}
		162
		163	memset(ret, 0, sizeof(CERT));
		164
		165	ret->key = &ret->pkeys[cert->key - &cert->pkeys[0]];
		166	/* or ret->key = ret->pkeys + (cert->key - cert->pkeys),
		167	* if you find that more readable */
		168
		169	ret->valid = cert->valid;
		170	ret->mask = cert->mask;
		171	ret->export_mask = cert->export_mask;
		172
		173	#ifndef NO_RSA
		174	if (cert->rsa_tmp != NULL)
		175	{
		176	ret->rsa_tmp = cert->rsa_tmp;
		177	CRYPTO_add(&ret->rsa_tmp->references, 1, CRYPTO_LOCK_RSA);
		178	}
		179	ret->rsa_tmp_cb = cert->rsa_tmp_cb;
		180	#endif
		181
		182	#ifndef NO_DH
		183	if (cert->dh_tmp != NULL)
		184	{
		185	/* DH parameters don't have a reference count (and cannot
		186	* reasonably be shared anyway, as the secret exponent may
		187	* be created just when it is needed -- earlier library
		188	* versions did not pay attention to this) */
		189	ret->dh_tmp = DHparams_dup(cert->dh_tmp);
		190	if (ret->dh_tmp == NULL)
		191	{
		192	SSLerr(SSL_F_SSL_CERT_NEW, ERR_R_DH_LIB);
		193	goto err;
		194	}
		195	}
		196	ret->dh_tmp_cb = cert->dh_tmp_cb;
		197	#endif
		198
		199	for (i = 0; i < SSL_PKEY_NUM; i++)
		200	{
		201	if (cert->pkeys[i].x509 != NULL)
		202	{
		203	ret->pkeys[i].x509 = cert->pkeys[i].x509;
		204	CRYPTO_add(&ret->pkeys[i].x509->references, 1,
		205	CRYPTO_LOCK_X509);
		206	}
		207
		208	if (cert->pkeys[i].privatekey != NULL)
		209	{
		210	ret->pkeys[i].privatekey = cert->pkeys[i].privatekey;
		211	CRYPTO_add(&ret->pkeys[i].privatekey->references, 1,
		212	CRYPTO_LOCK_EVP_PKEY);
		213
		214	switch(i)
		215	{
		216	/* If there was anything special to do for
		217	* certain types of keys, we'd do it here.
		218	* (Nothing at the moment, I think.) */
		219
		220	case SSL_PKEY_RSA_ENC:
		221	case SSL_PKEY_RSA_SIGN:
		222	/* We have an RSA key. */
		223	break;
		224
		225	case SSL_PKEY_DSA_SIGN:
		226	/* We have a DSA key. */
		227	break;
		228
		229	case SSL_PKEY_DH_RSA:
		230	case SSL_PKEY_DH_DSA:
		231	/* We have a DH key. */
		232	break;
		233
		234	default:
		235	/* Can't happen. */
		236	SSLerr(SSL_F_SSL_CERT_DUP, SSL_R_LIBRARY_BUG);
		237	}
		238	}
		239	}
		240
		241	/* ret->extra_certs should exist, but currently the own certificate
		242	* chain is held inside SSL_CTX */
		243
		244	ret->references=1;
		245
		246	return(ret);
		247
		248	err:
		249	#ifndef NO_RSA
		250	if (ret->rsa_tmp != NULL)
		251	RSA_free(ret->rsa_tmp);
		252	#endif
		253	#ifndef NO_DH
		254	if (ret->dh_tmp != NULL)
		255	DH_free(ret->dh_tmp);
		256	#endif
		257
		258	for (i = 0; i < SSL_PKEY_NUM; i++)
		259	{
		260	if (ret->pkeys[i].x509 != NULL)
		261	X509_free(ret->pkeys[i].x509);
		262	if (ret->pkeys[i].privatekey != NULL)
		263	EVP_PKEY_free(ret->pkeys[i].privatekey);
		264	}
		265
		266	return NULL;
		267	}
		268
		269
		270	void ssl_cert_free(CERT *c)
93	{	271	{
94	int i;	272	int i;
95		273
		274	if(c == NULL)
		275	return;
		276
96	i=CRYPTO_add(&c->references,-1,CRYPTO_LOCK_SSL_CERT);	277	i=CRYPTO_add(&c->references,-1,CRYPTO_LOCK_SSL_CERT);
97	#ifdef REF_PRINT	278	#ifdef REF_PRINT
98	REF_PRINT("CERT",c);	279	REF_PRINT("CERT",c);
@@ -124,97 +305,188 @@ CERT *c;
124	EVP_PKEY_free(c->pkeys[i].publickey);	305	EVP_PKEY_free(c->pkeys[i].publickey);
125	#endif	306	#endif
126	}	307	}
127	if (c->cert_chain != NULL)
128	sk_pop_free(c->cert_chain,X509_free);
129	Free(c);	308	Free(c);
130	}	309	}
131		310
132	int ssl_set_cert_type(c, type)	311	int ssl_cert_inst(CERT **o)
133	CERT *c;
134	int type;
135	{	312	{
136	c->cert_type=type;	313	/* Create a CERT if there isn't already one
		314	* (which cannot really happen, as it is initially created in
		315	* SSL_CTX_new; but the earlier code usually allows for that one
		316	* being non-existant, so we follow that behaviour, as it might
		317	* turn out that there actually is a reason for it -- but I'm
		318	* not sure that all of the existing code could cope with
		319	* s->cert being NULL, otherwise we could do without the
		320	* initialization in SSL_CTX_new).
		321	*/
		322
		323	if (o == NULL)
		324	{
		325	SSLerr(SSL_F_SSL_CERT_INST, ERR_R_PASSED_NULL_PARAMETER);
		326	return(0);
		327	}
		328	if (*o == NULL)
		329	{
		330	if ((*o = ssl_cert_new()) == NULL)
		331	{
		332	SSLerr(SSL_F_SSL_CERT_INST, ERR_R_MALLOC_FAILURE);
		333	return(0);
		334	}
		335	}
		336	return(1);
		337	}
		338
		339
		340	SESS_CERT *ssl_sess_cert_new(void)
		341	{
		342	SESS_CERT *ret;
		343
		344	ret = Malloc(sizeof *ret);
		345	if (ret == NULL)
		346	{
		347	SSLerr(SSL_F_SSL_SESS_CERT_NEW, ERR_R_MALLOC_FAILURE);
		348	return NULL;
		349	}
		350
		351	memset(ret, 0 ,sizeof *ret);
		352	ret->peer_key = &(ret->peer_pkeys[SSL_PKEY_RSA_ENC]);
		353	ret->references = 1;
		354
		355	return ret;
		356	}
		357
		358	void ssl_sess_cert_free(SESS_CERT *sc)
		359	{
		360	int i;
		361
		362	if (sc == NULL)
		363	return;
		364
		365	i = CRYPTO_add(&sc->references, -1, CRYPTO_LOCK_SSL_SESS_CERT);
		366	#ifdef REF_PRINT
		367	REF_PRINT("SESS_CERT", sc);
		368	#endif
		369	if (i > 0)
		370	return;
		371	#ifdef REF_CHECK
		372	if (i < 0)
		373	{
		374	fprintf(stderr,"ssl_sess_cert_free, bad reference count\n");
		375	abort(); /* ok */
		376	}
		377	#endif
		378
		379	/* i == 0 */
		380	if (sc->cert_chain != NULL)
		381	sk_X509_pop_free(sc->cert_chain, X509_free);
		382	for (i = 0; i < SSL_PKEY_NUM; i++)
		383	{
		384	if (sc->peer_pkeys[i].x509 != NULL)
		385	X509_free(sc->peer_pkeys[i].x509);
		386	#if 0 /* We don't have the peer's private key. These lines are just
		387	* here as a reminder that we're still using a not-quite-appropriate
		388	* data structure. */
		389	if (sc->peer_pkeys[i].privatekey != NULL)
		390	EVP_PKEY_free(sc->peer_pkeys[i].privatekey);
		391	#endif
		392	}
		393
		394	#ifndef NO_RSA
		395	if (sc->peer_rsa_tmp != NULL)
		396	RSA_free(sc->peer_rsa_tmp);
		397	#endif
		398	#ifndef NO_DH
		399	if (sc->peer_dh_tmp != NULL)
		400	DH_free(sc->peer_dh_tmp);
		401	#endif
		402
		403	Free(sc);
		404	}
		405
		406	int ssl_set_peer_cert_type(SESS_CERT *sc,int type)
		407	{
		408	sc->peer_cert_type = type;
137	return(1);	409	return(1);
138	}	410	}
139		411
140	int ssl_verify_cert_chain(s,sk)	412	int ssl_verify_cert_chain(SSL s,STACK_OF(X509) sk)
141	SSL *s;
142	STACK *sk;
143	{	413	{
144	X509 *x;	414	X509 *x;
145	int i;	415	int i;
146	X509_STORE_CTX ctx;	416	X509_STORE_CTX ctx;
147		417
148	if ((sk == NULL) \|\| (sk_num(sk) == 0))	418	if ((sk == NULL) \|\| (sk_X509_num(sk) == 0))
149	return(0);	419	return(0);
150		420
151	x=(X509 *)sk_value(sk,0);	421	x=sk_X509_value(sk,0);
152	X509_STORE_CTX_init(&ctx,s->ctx->cert_store,x,sk);	422	X509_STORE_CTX_init(&ctx,s->ctx->cert_store,x,sk);
153	X509_STORE_CTX_set_app_data(&ctx,(char *)s);	423	if (SSL_get_verify_depth(s) >= 0)
		424	X509_STORE_CTX_set_depth(&ctx, SSL_get_verify_depth(s));
		425	X509_STORE_CTX_set_ex_data(&ctx,SSL_get_ex_data_X509_STORE_CTX_idx(),
		426	(char *)s);
154		427
155	if (s->ctx->app_verify_callback != NULL)	428	if (s->ctx->app_verify_callback != NULL)
156	i=s->ctx->app_verify_callback(&ctx);	429	i=s->ctx->app_verify_callback(&ctx); /* should pass app_verify_arg */
157	else	430	else
		431	{
		432	#ifndef NO_X509_VERIFY
158	i=X509_verify_cert(&ctx);	433	i=X509_verify_cert(&ctx);
		434	#else
		435	i=0;
		436	ctx.error=X509_V_ERR_APPLICATION_VERIFICATION;
		437	SSLerr(SSL_F_SSL_VERIFY_CERT_CHAIN,SSL_R_NO_VERIFY_CALLBACK);
		438	#endif
		439	}
159		440
160	X509_STORE_CTX_cleanup(&ctx);
161	s->verify_result=ctx.error;	441	s->verify_result=ctx.error;
		442	X509_STORE_CTX_cleanup(&ctx);
162		443
163	return(i);	444	return(i);
164	}	445	}
165		446
166	static void set_client_CA_list(ca_list,list)	447	static void set_client_CA_list(STACK_OF(X509_NAME) *ca_list,STACK_OF(X509_NAME) list)
167	STACK **ca_list;
168	STACK *list;
169	{	448	{
170	if (*ca_list != NULL)	449	if (*ca_list != NULL)
171	sk_pop_free(*ca_list,X509_NAME_free);	450	sk_X509_NAME_pop_free(*ca_list,X509_NAME_free);
172		451
173	*ca_list=list;	452	*ca_list=list;
174	}	453	}
175		454
176	STACK *SSL_dup_CA_list(sk)	455	STACK_OF(X509_NAME) SSL_dup_CA_list(STACK_OF(X509_NAME) sk)
177	STACK *sk;
178	{	456	{
179	int i;	457	int i;
180	STACK *ret;	458	STACK_OF(X509_NAME) *ret;
181	X509_NAME *name;	459	X509_NAME *name;
182		460
183	ret=sk_new_null();	461	ret=sk_X509_NAME_new_null();
184	for (i=0; i<sk_num(sk); i++)	462	for (i=0; i<sk_X509_NAME_num(sk); i++)
185	{	463	{
186	name=X509_NAME_dup((X509_NAME *)sk_value(sk,i));	464	name=X509_NAME_dup(sk_X509_NAME_value(sk,i));
187	if ((name == NULL) \|\| !sk_push(ret,(char *)name))	465	if ((name == NULL) \|\| !sk_X509_NAME_push(ret,name))
188	{	466	{
189	sk_pop_free(ret,X509_NAME_free);	467	sk_X509_NAME_pop_free(ret,X509_NAME_free);
190	return(NULL);	468	return(NULL);
191	}	469	}
192	}	470	}
193	return(ret);	471	return(ret);
194	}	472	}
195		473
196	void SSL_set_client_CA_list(s,list)	474	void SSL_set_client_CA_list(SSL s,STACK_OF(X509_NAME) list)
197	SSL *s;
198	STACK *list;
199	{	475	{
200	set_client_CA_list(&(s->client_CA),list);	476	set_client_CA_list(&(s->client_CA),list);
201	}	477	}
202		478
203	void SSL_CTX_set_client_CA_list(ctx,list)	479	void SSL_CTX_set_client_CA_list(SSL_CTX ctx,STACK_OF(X509_NAME) list)
204	SSL_CTX *ctx;
205	STACK *list;
206	{	480	{
207	set_client_CA_list(&(ctx->client_CA),list);	481	set_client_CA_list(&(ctx->client_CA),list);
208	}	482	}
209		483
210	STACK *SSL_CTX_get_client_CA_list(ctx)	484	STACK_OF(X509_NAME) SSL_CTX_get_client_CA_list(SSL_CTX ctx)
211	SSL_CTX *ctx;
212	{	485	{
213	return(ctx->client_CA);	486	return(ctx->client_CA);
214	}	487	}
215		488
216	STACK *SSL_get_client_CA_list(s)	489	STACK_OF(X509_NAME) SSL_get_client_CA_list(SSL s)
217	SSL *s;
218	{	490	{
219	if (s->type == SSL_ST_CONNECT)	491	if (s->type == SSL_ST_CONNECT)
220	{ /* we are in the client */	492	{ /* we are in the client */
@@ -233,20 +505,18 @@ SSL *s;
233	}	505	}
234	}	506	}
235		507
236	static int add_client_CA(sk,x)	508	static int add_client_CA(STACK_OF(X509_NAME) *sk,X509 x)
237	STACK **sk;
238	X509 *x;
239	{	509	{
240	X509_NAME *name;	510	X509_NAME *name;
241		511
242	if (x == NULL) return(0);	512	if (x == NULL) return(0);
243	if ((sk == NULL) && ((sk=sk_new_null()) == NULL))	513	if ((sk == NULL) && ((sk=sk_X509_NAME_new_null()) == NULL))
244	return(0);	514	return(0);
245		515
246	if ((name=X509_NAME_dup(X509_get_subject_name(x))) == NULL)	516	if ((name=X509_NAME_dup(X509_get_subject_name(x))) == NULL)
247	return(0);	517	return(0);
248		518
249	if (!sk_push(sk,(char )name))	519	if (!sk_X509_NAME_push(*sk,name))
250	{	520	{
251	X509_NAME_free(name);	521	X509_NAME_free(name);
252	return(0);	522	return(0);
@@ -254,37 +524,39 @@ X509 *x;
254	return(1);	524	return(1);
255	}	525	}
256		526
257	int SSL_add_client_CA(ssl,x)	527	int SSL_add_client_CA(SSL ssl,X509 x)
258	SSL *ssl;
259	X509 *x;
260	{	528	{
261	return(add_client_CA(&(ssl->client_CA),x));	529	return(add_client_CA(&(ssl->client_CA),x));
262	}	530	}
263		531
264	int SSL_CTX_add_client_CA(ctx,x)	532	int SSL_CTX_add_client_CA(SSL_CTX ctx,X509 x)
265	SSL_CTX *ctx;
266	X509 *x;
267	{	533	{
268	return(add_client_CA(&(ctx->client_CA),x));	534	return(add_client_CA(&(ctx->client_CA),x));
269	}	535	}
270		536
271	static int name_cmp(a,b)	537	static int name_cmp(X509_NAME a,X509_NAME b)
272	X509_NAME a,b;
273	{	538	{
274	return(X509_NAME_cmp(a,b));	539	return(X509_NAME_cmp(a,b));
275	}	540	}
276		541
277	#ifndef NO_STDIO	542	#ifndef NO_STDIO
278	STACK *SSL_load_client_CA_file(file)	543	/*!
279	char *file;	544	* Load CA certs from a file into a ::STACK. Note that it is somewhat misnamed;
		545	* it doesn't really have anything to do with clients (except that a common use
		546	* for a stack of CAs is to send it to the client). Actually, it doesn't have
		547	* much to do with CAs, either, since it will load any old cert.
		548	* \param file the file containing one or more certs.
		549	* \return a ::STACK containing the certs.
		550	*/
		551	STACK_OF(X509_NAME) SSL_load_client_CA_file(const char file)
280	{	552	{
281	BIO *in;	553	BIO *in;
282	X509 *x=NULL;	554	X509 *x=NULL;
283	X509_NAME *xn=NULL;	555	X509_NAME *xn=NULL;
284	STACK ret,sk;	556	STACK_OF(X509_NAME) ret,sk;
285		557
286	ret=sk_new(NULL);	558	ret=sk_X509_NAME_new(NULL);
287	sk=sk_new(name_cmp);	559	sk=sk_X509_NAME_new(name_cmp);
288		560
289	in=BIO_new(BIO_s_file_internal());	561	in=BIO_new(BIO_s_file_internal());
290		562
@@ -299,31 +571,146 @@ char *file;
299		571
300	for (;;)	572	for (;;)
301	{	573	{
302	if (PEM_read_bio_X509(in,&x,NULL) == NULL)	574	if (PEM_read_bio_X509(in,&x,NULL,NULL) == NULL)
303	break;	575	break;
304	if ((xn=X509_get_subject_name(x)) == NULL) goto err;	576	if ((xn=X509_get_subject_name(x)) == NULL) goto err;
305	/* check for duplicates */	577	/* check for duplicates */
306	xn=X509_NAME_dup(xn);	578	xn=X509_NAME_dup(xn);
307	if (xn == NULL) goto err;	579	if (xn == NULL) goto err;
308	if (sk_find(sk,(char *)xn) >= 0)	580	if (sk_X509_NAME_find(sk,xn) >= 0)
309	X509_NAME_free(xn);	581	X509_NAME_free(xn);
310	else	582	else
311	{	583	{
312	sk_push(sk,(char *)xn);	584	sk_X509_NAME_push(sk,xn);
313	sk_push(ret,(char *)xn);	585	sk_X509_NAME_push(ret,xn);
314	}	586	}
315	}	587	}
316		588
317	if (0)	589	if (0)
318	{	590	{
319	err:	591	err:
320	if (ret != NULL) sk_pop_free(ret,X509_NAME_free);	592	if (ret != NULL) sk_X509_NAME_pop_free(ret,X509_NAME_free);
321	ret=NULL;	593	ret=NULL;
322	}	594	}
323	if (sk != NULL) sk_free(sk);	595	if (sk != NULL) sk_X509_NAME_free(sk);
324	if (in != NULL) BIO_free(in);	596	if (in != NULL) BIO_free(in);
325	if (x != NULL) X509_free(x);	597	if (x != NULL) X509_free(x);
326	return(ret);	598	return(ret);
327	}	599	}
328	#endif	600	#endif
329		601
		602	/*!
		603	* Add a file of certs to a stack.
		604	* \param stack the stack to add to.
		605	* \param file the file to add from. All certs in this file that are not
		606	* already in the stack will be added.
		607	* \return 1 for success, 0 for failure. Note that in the case of failure some
		608	* certs may have been added to \c stack.
		609	*/
		610
		611	int SSL_add_file_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack,
		612	const char *file)
		613	{
		614	BIO *in;
		615	X509 *x=NULL;
		616	X509_NAME *xn=NULL;
		617	int ret=1;
		618	int (oldcmp)(X509_NAME a, X509_NAME *b);
		619
		620	oldcmp=sk_X509_NAME_set_cmp_func(stack,name_cmp);
		621
		622	in=BIO_new(BIO_s_file_internal());
		623
		624	if (in == NULL)
		625	{
		626	SSLerr(SSL_F_SSL_ADD_FILE_CERT_SUBJECTS_TO_STACK,ERR_R_MALLOC_FAILURE);
		627	goto err;
		628	}
		629
		630	if (!BIO_read_filename(in,file))
		631	goto err;
		632
		633	for (;;)
		634	{
		635	if (PEM_read_bio_X509(in,&x,NULL,NULL) == NULL)
		636	break;
		637	if ((xn=X509_get_subject_name(x)) == NULL) goto err;
		638	xn=X509_NAME_dup(xn);
		639	if (xn == NULL) goto err;
		640	if (sk_X509_NAME_find(stack,xn) >= 0)
		641	X509_NAME_free(xn);
		642	else
		643	sk_X509_NAME_push(stack,xn);
		644	}
		645
		646	if (0)
		647	{
		648	err:
		649	ret=0;
		650	}
		651	if(in != NULL)
		652	BIO_free(in);
		653	if(x != NULL)
		654	X509_free(x);
		655
		656	sk_X509_NAME_set_cmp_func(stack,oldcmp);
		657
		658	return ret;
		659	}
		660
		661	/*!
		662	* Add a directory of certs to a stack.
		663	* \param stack the stack to append to.
		664	* \param dir the directory to append from. All files in this directory will be
		665	* examined as potential certs. Any that are acceptable to
		666	* SSL_add_dir_cert_subjects_to_stack() that are not already in the stack will be
		667	* included.
		668	* \return 1 for success, 0 for failure. Note that in the case of failure some
		669	* certs may have been added to \c stack.
		670	*/
		671
		672	#ifndef WIN32
		673	#ifndef VMS /* XXXX This may be fixed in the future */
		674
		675	int SSL_add_dir_cert_subjects_to_stack(STACK_OF(X509_NAME) *stack,
		676	const char *dir)
		677	{
		678	DIR *d;
		679	struct dirent *dstruct;
		680	int ret = 0;
		681
		682	CRYPTO_w_lock(CRYPTO_LOCK_READDIR);
		683	d = opendir(dir);
		684
		685	/* Note that a side effect is that the CAs will be sorted by name */
		686	if(!d)
		687	{
		688	SYSerr(SYS_F_OPENDIR, get_last_sys_error());
		689	ERR_add_error_data(3, "opendir('", dir, "')");
		690	SSLerr(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK, ERR_R_SYS_LIB);
		691	goto err;
		692	}
		693
		694	while((dstruct=readdir(d)))
		695	{
		696	char buf[1024];
		697
		698	if(strlen(dir)+strlen(dstruct->d_name)+2 > sizeof buf)
		699	{
		700	SSLerr(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK,SSL_R_PATH_TOO_LONG);
		701	goto err;
		702	}
		703
		704	sprintf(buf,"%s/%s",dir,dstruct->d_name);
		705	if(!SSL_add_file_cert_subjects_to_stack(stack,buf))
		706	goto err;
		707	}
		708	ret = 1;
		709
		710	err:
		711	CRYPTO_w_unlock(CRYPTO_LOCK_READDIR);
		712	return ret;
		713	}
		714
		715	#endif
		716	#endif